WHAT IS CLAIMED IS: 



5 LA system for securing an application for execution on a computer, the 

method comprising: 

a preprocessor module for scanning the application program for code 
sequences that cause the computer to trap to the operating system and for 
modifying the code sequences such that the computer does not trap to the 
10 operating system; 

a server computer for receiving at least one application that has been 
modified by the preprocessor module; 
a network; and 

a client computer operably connected to the server computer via the 
15 network, wherein the client computer receives the modified application from the 

server computer, wherein subsequent to receiving the application, the chent 
computer executes the apphcation. 

2. A method of securing an apphcation for execution on a computer, the 
20 method comprising: 

scanning the application for code sequences that cause the computer to 
trap to the operating system; and 

modifying the code sequences such that the computer does not trap to the 
operating system. 

25 

3* A method of secxiring an application for execution on a computer, the 
method comprising: 

loading the application; 

marking all of the code pages of the loaded application execute only; and 
30 preventing the application from creating executable data during the 

execution of the application. 
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4. A method of securing an application for execution on a computer, the 
method comprising: 

preventing the application from creating executable data during the 
execution of the application; 
5 scanning the application for code sequences that cause the computer to 

trap to the operating system; and 

modifying the code sequences such that the computer does not trap to the 
operating system. 

5. A method of securing an application for execution on a computer, the 
1 0 method comprising: 

preventing the application from creating executable data during the 
execution of the appHcation; and 

preventing at least one code page of the application from becoming 
readable and writeable. 

15 6. A method of securing an appUcation for execution on a computer, the 

method comprising: 

loading the appUcation; 

marking all of the data pages of the loaded application read and write 

only; and 

20 preventing the application from creating executable data during the 

execution of the application. 

7. A method of securing an appUcation for execution on a computer, the 
method comprising: 

25 preventing the application from creating executable data during the 

execution of the application; and 

preventing the appUcation from modifying executable files or executing 
any application generated files. 

30 
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8, The method of Claim 7, additionally comprising: 

scanning the application for code sequences that cause the computer to 
trap to the operating system; and 

modifying the code sequences such that the computer does not trap to the 
operating system. 

9. The method of Claim 7, additionally comprising preventing at least one 
code page of the appUcation from becoming readable and writeable. 



1 0. The method of Claim 7, additionally comprising: 
loading the application; and 

marking all of the code pages of the loaded appUcation execute only. 

1 1 . The method of Claim 7, additionally comprising: 
loading the application; and 

marking all of the data pages of the loaded application read and write 

only. 

12. The method of Claim 1, wherein preventing the code page of the 
appUcation from becoming readable and writeable comprises intercepting transparently 
to the appUcation a request from the appUcation to change the attributes of the code 
page. 

13. A method of securing an application for execution on a computer, the 
method comprising: 

before the execution of an application program, scanning the appUcation 
program for code sequences that cause the computer to trap to the operating 
system; 

before the execution of the application program, modifying the code 
sequences such that the computer does not trap to the operating system; 



-50- 



during or subsequent to the execution of the appUcation program, scanning 
executable data that is created by the appUcation program for sequences that trap 
to the operating system; and 

during or subsequent to the execution of the appUcation program, 
5 scanning new executable files that are created or modified by the application 

program; and 

during or subsequent to the execution of the appUcation program, 
modifying the executable data and the new files such that the appUcation 
program does not trap to the operating system. 

10 

14. A method of securing an appUcation for execution on a computer, the 
method comprising: 

scanning the application for code sequences that cause the computer to 
trap to the operating system; 
1 5 modifying the code sequences such that the computer does not trap to the 

operating system; 

scanning the dynamically generated code that is created by the 
appUcation for code sequences that cause the computer to trap to the operating 
system; and 

20 modifying the code sequences such that the computer does not trap to the 

operating system. 

15. The method of Claim 14, additionally comprising preventing at least one 
code page of the application fi-om becoming readable and writeable. 

25 

16. The method of Claim 15, wherein preventing the code page of the 
application fi:om becoming readable and writeable comprises intercepting transparently 
to the application a request firom the application to change the attributes of the code 
page, 

30 
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17. The method of Claim 14, additionally comprising preventing data pages 
from becoming executable. 

18. A system for preventing an application from directly calling an operating 
5 system, the system comprising: 

means for scanning the application program for code sequences that 
cause the computer to trap to the operating system; and 

means for modifying the code sequences such that the computer does not 
trap to the operating system. 

10 

19. A system for preventing an appUcation from directly calHng an operating 
system, the system comprising: 

means for preventing the appUcation from creating executable data 
during the execution of the application; and 
15 means for preventing the appUcation from modifying executable files or 

executing any application generated files. 

20. The system of Claim 19, additionally comprising: 

means for scanning the application program for code sequences that 
20 cause the computer to trap to the operating system; and 

means for modifying the code sequences such that the computer does not 
trap to the operating system. 

2L The system of Claim 19, additionally comprising means for copying the 
25 location of at least one module from a first location to a second location. 

22. The system of Claim 19, wherein the at least one module is a system 

library. 

30 23. The system of Claim 19, additionally comprising means for preventing at 

least one code page of the application from becoming readable and writeable. 
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24. The method of Claim 19, wherein preventing the code page of the 
application from becoming readable and writeable comprises intercepting transparently 
to the application a request from the appUcation to change the attributes of the code 

5 page. 

25. A system for securing an application for execution on a cUent computer, 
the system comprising: 

means for scanning the application for code sequences that cause the 
1 0 computer to trap to the operating system; 

means for modifying the code sequences such that the computer does not 
trap to the operating system; 

means for scanning the dynamically generated code, that is created by 
the application, for code sequences that cause the computer to trap to the 
15 operating system; and 

means for modifying the code sequences such that the computer does not 
trap to the operating system. 

26. The system of Claim 25, additionally comprising means for copying the 
20 location of at least one module from a first location to a second location. 

27. The system of Claim 25, wherein the at least one module is a system 

library. 

25 28. The system of Claim 25, additionally comprising means for preventing at 

least one code page of the appUcation from becoming readable and writeable. 

29. The system of Claim 25, wherein preventing the code page of the 
application from becoming readable and writeable comprises intercepting transparently 
30 to the application a request from the application to change the attributes of the code 
page. 



-53- 



